Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5mNquBo0Op_9glfqyx3exTiWaAQ.cer
File: 5mNquBo0Op_9glfqyx3exTiWaAQ.cer (raw, json)
Hash identifier: qmH8G8liNoxf9hEWw1xD7NAGzStBWeDQkiRx8qH8sXg=
Subject key identifier: E6:63:6A:B8:1A:34:3A:9F:FD:82:57:EA:CB:1D:DE:C5:38:96:68:04
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DFAB29110703E9B4CE7E3D171EE79E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6d/1455d2-724a-439e-96ed-9876aebbd2c9/1/5mNquBo0Op_9glfqyx3exTiWaAQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6d/1455d2-724a-439e-96ed-9876aebbd2c9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:32:30 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 29357
IP: 78.89.0.0/16
IP: 178.53.0.0/16
IP: 185.146.240.0/22
IP: 188.70.0.0/15
IP: 217.69.176.0/20
IP: 2a00:1850::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:ab:29:11:07:03:e9:b4:ce:7e:3d:17:1e:e7:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:32:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6636ab81a343a9ffd8257eacb1ddec538966804
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:83:ff:a3:1b:51:b6:53:6e:99:94:2f:47:0f:
a9:78:49:d8:fa:81:0a:bb:7a:c7:33:6a:e7:b6:eb:
85:dc:6a:99:44:e8:fe:d3:67:70:7c:08:ef:79:30:
89:76:3f:2b:29:d1:8c:46:fe:83:2a:8b:d7:cd:6a:
95:a7:f6:58:a7:89:54:e2:87:27:b1:0b:b0:a5:a0:
d6:fe:48:03:ba:6a:c3:a5:f4:76:d0:4e:e9:2e:8c:
39:59:2f:6b:47:60:d7:6f:32:53:6c:78:54:a1:2b:
77:d9:5b:c4:46:7d:5a:59:3c:33:9f:cb:b8:4f:82:
62:dd:42:da:fb:69:48:e4:ae:5e:f3:9f:97:a9:17:
e0:47:d2:fa:6e:33:c5:fb:59:c8:38:b3:d0:aa:95:
a0:d9:28:e1:7f:03:8c:a1:2c:a6:dc:be:c9:31:dc:
d4:af:45:af:a5:48:b8:6b:c1:58:0b:d6:fc:38:e4:
7d:62:e1:18:fd:65:20:dc:b1:55:9a:e0:d8:c1:7b:
cd:c2:98:56:f9:cd:ab:35:31:a9:af:ab:66:3c:bb:
43:3d:f8:fa:44:fe:c8:61:24:c5:a0:c0:50:e7:55:
da:19:d3:3d:5f:18:04:5f:cc:2c:4a:b4:87:8e:50:
45:03:56:28:1c:a3:01:e8:bc:a1:85:3a:f5:b0:8a:
65:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:63:6A:B8:1A:34:3A:9F:FD:82:57:EA:CB:1D:DE:C5:38:96:68:04
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/1455d2-724a-439e-96ed-9876aebbd2c9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/1455d2-724a-439e-96ed-9876aebbd2c9/1/5mNquBo0Op_9glfqyx3exTiWaAQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.89.0.0/16
178.53.0.0/16
185.146.240.0/22
188.70.0.0/15
217.69.176.0/20
IPv6:
2a00:1850::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
29357
Signature Algorithm: sha256WithRSAEncryption
7f:64:33:7c:5d:0c:7c:0f:6b:ed:af:81:e0:db:c1:94:a6:66:
cb:89:9b:b2:59:a1:af:28:0a:49:0d:ea:77:1a:80:0c:6c:89:
08:c4:7d:4d:1f:58:86:88:34:e9:2f:eb:fc:ca:0b:ba:27:92:
fb:63:c6:d1:ff:1f:ee:db:2b:fd:d9:f6:c3:f7:2f:c2:45:78:
fb:a3:6a:7d:83:3c:a9:fc:57:91:3d:49:d7:93:28:24:1d:42:
45:fa:25:a3:93:5b:83:22:0e:a6:27:20:67:c3:8e:58:9b:41:
2c:8b:21:1d:f2:7a:4e:6b:5f:f9:68:c4:fe:14:56:c6:3d:d1:
f1:65:04:34:b4:a7:ad:39:fe:92:70:92:c2:87:06:d6:20:55:
f8:fd:4d:31:cb:fa:e2:d8:a1:ec:a0:1e:52:12:14:80:54:5f:
c8:77:04:09:b2:b9:54:03:a0:bc:1b:c7:0b:62:e3:5e:43:63:
a1:66:76:7a:31:97:f0:fe:e8:f1:4f:de:f7:ed:98:da:6f:b7:
81:36:e0:aa:e1:0d:f3:45:3b:76:a2:31:78:9d:a8:1e:c8:5a:
7d:48:5a:35:77:ef:dc:ca:0a:57:5e:1b:67:95:a9:d6:07:01:
73:2a:2a:0b:04:82:74:62:8a:a0:6f:1b:40:bb:9c:71:b0:79:
81:de:d4:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:13:43 2024 by rpki-client on console-ams.rpki-client.org